cybersecurity Archives • Page 71 of 88 • Daily CyberSecurity

7.7 Warning: Discontinued Amazon Cloud Cam Has Vulnerability (CVE-2025-6031), Exposing Your Network Amazon Cloud Cam, Unsupported Device

7.7 Warning: Discontinued Amazon Cloud Cam Has Vulnerability (CVE-2025-6031), Exposing Your Network

Do Son June 13, 2025

A newly disclosed vulnerability in the now-discontinued Amazon Cloud Cam has raised serious concerns about the risks...

Apache Tomcat Under Attack: Massive Brute-Force Campaign Targets Manager Interfaces Apache Tomcat, Brute-Force Attacks CVE-2024-38286 - Apache Tomcat 11

Apache Tomcat, Brute-Force Attacks CVE-2024-38286 - Apache Tomcat 11

Apache Tomcat Under Attack: Massive Brute-Force Campaign Targets Manager Interfaces

Do Son June 13, 2025

A significant surge in brute-force attacks is targeting Apache Tomcat Manager interfaces, according to a new report...

9.8 Critical Path Traversal Vulnerability (CVSS 9.8) Exposes Mitel MiCollab Servers to Unauthorized Access Mitel MiCollab, Critical Vulnerability

9.8 Critical Path Traversal Vulnerability (CVSS 9.8) Exposes Mitel MiCollab Servers to Unauthorized Access

Do Son June 13, 2025

Mitel has issued a critical security advisory warning of a newly discovered path traversal vulnerability affecting its...

10.0 Urgent Bosch Alert: Critical RCE Flaw (CVSS 10.0) Exposes Dispatch & Matrix Software to Attack Bosch RCE, Critical Vulnerability

10.0 Urgent Bosch Alert: Critical RCE Flaw (CVSS 10.0) Exposes Dispatch & Matrix Software to Attack

Do Son June 13, 2025

Bosch has issued a critical security advisory addressing a severe remote code execution (RCE) vulnerability affecting its...

TeamFiltration Weaponized: UNK_SneakyStrike Campaign Targets 80,000+ Microsoft Entra ID Accounts

Do Son June 13, 2025

According to a new report by Proofpoint, attackers are now actively exploiting the TeamFiltration penetration testing framework...

Critical Critical CI/CD Cache Poisoning Threatens Supply Chain: Undetectable Code Injection Possible! CI/CD Security, Cache Poisoning

Critical Critical CI/CD Cache Poisoning Threatens Supply Chain: Undetectable Code Injection Possible!

Do Son June 13, 2025

A newly disclosed vulnerability tracked as CVE-2025-36852 has shaken the foundation of modern CI/CD systems and supply...

8.2 Flaw in PostgreSQL JDBC Driver (CVE-2025-49146) Exposes Database Connections to MITM Attacks! PostgreSQL JDBC, MITM Vulnerability

8.2 Flaw in PostgreSQL JDBC Driver (CVE-2025-49146) Exposes Database Connections to MITM Attacks!

Do Son June 13, 2025

A recently disclosed vulnerability in the PostgreSQL JDBC Driver (PgJDBC) could allow attackers to intercept database connections...

8.1 High-Severity Flaw in HashiCorp Nomad (CVE-2025-4922) Allows Privilege Escalation HashiCorp Nomad, Privilege Escalation

8.1 High-Severity Flaw in HashiCorp Nomad (CVE-2025-4922) Allows Privilege Escalation

Do Son June 13, 2025

HashiCorp has disclosed a high-severity vulnerability in its workload orchestration tool, Nomad, which could allow attackers to...

HelloTDS Unmasked: Covert Traffic System Funnels Millions to FakeCaptcha Malware!

Do Son June 13, 2025

A complex and evasive infrastructure dubbed HelloTDS is silently steering millions of internet users into the clutches...

Zero-Click iMessage Alert: Paragon’s Graphite Spyware Exploits iOS Flaw, Targets Journalists Zero-Click Spyware, Graphite CVE-2025-43200

Zero-Click iMessage Alert: Paragon’s Graphite Spyware Exploits iOS Flaw, Targets Journalists

Do Son June 12, 2025

On April 29, 2025, Apple issued alerts: select iOS users were being targeted with advanced spyware. Among...

6.5 CVE-2025-41234: Spring Framework Vulnerability Enables Reflected File Download Attacks Spring Framework, RFD Vulnerability

6.5 CVE-2025-41234: Spring Framework Vulnerability Enables Reflected File Download Attacks

Do Son June 12, 2025

The Spring project has released a security advisory disclosing a vulnerability in the popular Spring Framework, which...

9.8 Urgent Firefox Alert: Critical Memory Corruption Flaws (CVSS 9.8) Allow Remote Code Execution Firefox Vulnerabilities

9.8 Urgent Firefox Alert: Critical Memory Corruption Flaws (CVSS 9.8) Allow Remote Code Execution

Do Son June 12, 2025

The Mozilla Foundation has issued an urgent security update for the Firefox web browser, addressing two critical...

Warning: Don’t Blindly Click “Unsubscribe” Links! It Could Be a Cybersecurity Trap Unsubscribe Links, Cybersecurity

Warning: Don’t Blindly Click “Unsubscribe” Links! It Could Be a Cybersecurity Trap

Do Son June 12, 2025

Ordinarily, when we receive commercial advertisements or spam emails, it becomes second nature to click the “unsubscribe”...

Interpol & Asian Agencies Dismantle Major Malware Infrastructure: 20,000 Malicious IPs Blocked Malware Takedown, Interpol

Interpol & Asian Agencies Dismantle Major Malware Infrastructure: 20,000 Malicious IPs Blocked

Do Son June 12, 2025

Interpol recently disclosed the success of a coordinated operation targeting information-stealing malware, carried out in collaboration with...

9.8 Critical Trend Micro Apex Central Flaws: Pre-Auth RCE (CVSS 9.8) Threatens Your Security Trend Micro, RCE Vulnerability

9.8 Critical Trend Micro Apex Central Flaws: Pre-Auth RCE (CVSS 9.8) Threatens Your Security

Do Son June 12, 2025

Trend Micro has issued an urgent Critical Patch (CP B7007) for its Apex Central platform, addressing two...

Root Access Unlocked: Public PoC Exposes GlobalProtect macOS Privilege Escalation Flaw GlobalProtect, macOS Root

Root Access Unlocked: Public PoC Exposes GlobalProtect macOS Privilege Escalation Flaw

Do Son June 12, 2025

Palo Alto Networks has disclosed a security vulnerability in its GlobalProtect VPN client for macOS that could...

High Urgent GitLab Security Alert: High-Severity Flaws Allow Account Takeover & Code Injection! GitLab Security, High-Severity Flaws

High Urgent GitLab Security Alert: High-Severity Flaws Allow Account Takeover & Code Injection!

Do Son June 12, 2025

GitLab has issued urgent security updates for its Community Edition (CE) and Enterprise Edition (EE), addressing a...

Zero-Day Alert: Remotely Escalate Privileges to SYSTEM via Kerberos Relay – PoC Available Windows Zero-Day Kerberos relay

Zero-Day Alert: Remotely Escalate Privileges to SYSTEM via Kerberos Relay – PoC Available

Do Son June 12, 2025

A newly disclosed vulnerability, CVE-2025-33073, revealed by RedTeam Pentesting GmbH, exposes a critical flaw in Microsoft Windows’...

OpenPGP.js Flaw Allows Signature Spoofing, Breaking Message Trust – PoC Available! OpenPGP.js, Signature Spoofing

OpenPGP.js Flaw Allows Signature Spoofing, Breaking Message Trust – PoC Available!

Do Son June 12, 2025

In a recent technical write-up, researchers at Codean Labs unveiled a critical vulnerability in the OpenPGP.js library—an...

Flaws in Weidmueller IE-SR-2TX Routers Allow Remote Root Access! Weidmueller, Critical Vulnerabilities

Flaws in Weidmueller IE-SR-2TX Routers Allow Remote Root Access!

Do Son June 12, 2025

A recent coordinated security advisory issued by CERT@VDE and Weidmueller has disclosed three critical vulnerabilities affecting the...